actempire.com/
18.188.241.173301 Moved Permanently 293 B IP 18.188.241.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 97937242378dd3cc3f29035644ef6ff3
073aebb01889ac592d510956dd0e45785db7685c
8a942b69178a7a03ba4737a3ea2dcceee2166dc2ac74675c0667f716576e0f64
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 14:43:27 GMT
Server: Apache
Location: https://actempire.com/
Content-Length: 293
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15499
Expires: Fri, 27 Jan 2023 19:01:47 GMT
Date: Fri, 27 Jan 2023 14:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3314
Expires: Fri, 27 Jan 2023 15:38:42 GMT
Date: Fri, 27 Jan 2023 14:43:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 14:35:23 GMT
content-type: application/json
age: 485
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2698
Expires: Fri, 27 Jan 2023 15:28:26 GMT
Date: Fri, 27 Jan 2023 14:43:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WSa8eYQSlLd1Ovo01hpWBiOjW00TYs1+mCVL1FqjCV3s5HTYrJER1pf4wxYbEIiFfPIpoC59vAo=
x-amz-request-id: RDHHPFD2V0Q8VW6T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 13:49:26 GMT
age: 3242
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 14:43:28 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 13:49:03 GMT
age: 3265
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4d4c9b8017f8bd8fbdf8f4ab82b36f22
b3b3ea4a05b07867e5b8a1447aee6a1319f45f61
2a0765f01f21f84583a896b53c9a838a0381db2f8657aae888fe857c953ba5ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A0765F01F21F84583A896B53C9A838A0381DB2F8657AAE888FE857C953BA5BA"
Last-Modified: Fri, 27 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 27 Jan 2023 20:42:31 GMT
Date: Fri, 27 Jan 2023 14:43:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17240
Expires: Fri, 27 Jan 2023 19:30:48 GMT
Date: Fri, 27 Jan 2023 14:43:28 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.148.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.148.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TaKssHSuvST1sfJUuH0v1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TdOsVja070de1+tWsfAmtSd9/EA=
actempire.com/
18.188.241.173200 OK 8.2 kB IP 18.188.241.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1820), with CRLF, LF line terminators
Hash d6da9f660b8dd6cf9cec0c327e255142
071bbbf1f5442a21ad18916f9c7dd139e5343789
c95698af7c960c80b81ab3a8166dcde79ce022220206fb4b5cb16da577185d55
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:28 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
P3P: CP="NOI"
Link: <https://actempire.com/wp-json/>; rel="https://api.w.org/", <https://actempire.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://actempire.com/>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://actempire.com/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://actempire.com
Set-Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0
PHPSESSID=tt9qt27eifrooftrq61ae3lqfr; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.3.27, PleskLin
Content-Length: 8247
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
actempire.com/wp-content/themes/ACTEmpire/javascript/jquery.js
18.188.241.173200 OK 36 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/javascript/jquery.js
IP 18.188.241.173:0
File type Unicode text, UTF-8 text, with very long lines (60125)
Hash aabf29d5155605a54021bb6951378467
f0b4270fe34cd301cd82bdc52a437ff1fcbcb1b5
e4abf045fce953b1127dee69a7c131447994d6e681d72c4839f17acf92837e9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ACTEmpire/javascript/jquery.js HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:59:21 GMT
ETag: "19070-5e87c23ff4521-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 35563
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
actempire.com/wp-content/themes/ACTEmpire/javascript/jquery.tools.js
18.188.241.173200 OK 13 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/javascript/jquery.tools.js
IP 18.188.241.173:0
File type ASCII text, with very long lines (8544)
Hash ecbc7113f031a97e392d4a90db141709
f29b19c45f985d0c2e6202318e7f262eb3390455
812af6c49c07dfed4eac6df7d8d2666bdf6f1735375d38ba46247e5c65aa32a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/ACTEmpire/javascript/jquery.tools.js HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:06 GMT
ETag: "9347-574c0f590be80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12964
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/themes/ACTEmpire/style.css
18.188.241.173200 OK 275 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/style.css
IP 18.188.241.173:0
Hash b21d3b4182aa138a9f53bbfc1a844ff3
f4b2bd043716e91b890470b20bdc58a2c52e7da4
6637b4ddf6638ca8742937095e83260a988fab451f6351ac5b4ef3e28af588ea
GET /wp-content/themes/ACTEmpire/style.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:10 GMT
ETag: "1bb-574c0f5dabec0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 275
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
18.188.241.173200 OK 10 kB URL HTTP/1.1 actempire.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 18.188.241.173:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 2a3cc81919349cb551f504b077791457
1d9393824b33b80513dbb9b2c8db48b6719d5d46
13a8d762ef70a9a18c89c226c4671f986401ccb7dae1c20be18c3db1eabbb62c
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "13abe-5c86c0b84d9e0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10523
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.6
18.188.241.173200 OK 5.3 kB URL HTTP/1.1 actempire.com/wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (30141), with no line terminators
Hash d89d39db08f7fe5258679c92043f07f3
3adc166c9af1d5c5bb0ef7422a70207aaf66b3e0
bc60d92dea1331d6d9cca79d4f486b1cbc912c35807647e91e5cb209c4095751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bbpress/templates/default/css/bbpress.min.css?ver=2.6.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:20 GMT
ETag: "75bd-5c86c8d901c31-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5267
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
18.188.241.173200 OK 932 B URL HTTP/1.1 actempire.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2
IP 18.188.241.173:0
Hash b1eb322499f2dbc18499a9a46edd88fd
47213d17cb0eb45bd12ede49ee77e6c384b3664a
e3ec4292fd6b24707fe8b93f5d423120dcbc25aa702e7d434749910f947e4060
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.2 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:21 GMT
ETag: "a50-5c86c8da0f4c1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 932
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8.6
18.188.241.173200 OK 9.9 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (45507)
Hash a5c31fc0d7703fa2ce465b62b5b4dfe9
86c73fe36b74b95183d3fd29149f0cb4bac6a1fe
9537a365e74353121addd2ff96cf68fc56b81f7c6cd194f1783d54f39ff8132a
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "b277-5c86c8dbd279c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 9929
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 48f87f021aa43dc85cabc3b624264811
6dcc2e3610ec6ef91768905aae267c984227f54a
0e77dc8ff90169c7db1343058490de4942217f3846ca0586bebd33d32513b305
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
actempire.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8.6
18.188.241.173200 OK 9.9 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (57607)
Hash 5f34881d4a3136eca92f0f792b9626c0
54879860b98d3254bbb498c68d5a5b115d47c709
4c3f6761b0e91e6dc998658b2e9be111698b9dc4f1f89eccfabd6b6cdd8a620f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "e1e7-5c86c8dbcf8bb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 9856
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/download-manager/assets/css/front.css?ver=5.8.6
18.188.241.173200 OK 12 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/css/front.css?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (482)
Hash cf2c0c92f74240fb8282d39bbcd3f529
9bff2cb6a1c5e72fd60d5ad951ee3a6ebc8edd11
fc1c9652f4f9285826803e9d908a477a71ebe950b1adb19b1b58db576f3bd83b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "fdc7-5c86c8dbd567c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 11687
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
18.188.241.173200 OK 239 B URL HTTP/1.1 actempire.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70
IP 18.188.241.173:0
Hash 21fec527969cbcfec759744ce51f94c0
827130fb99b0005a5206028abfe82e93610184f2
fe2a280a5ffe9f5d3b1bf125035d478e46bae689a2f0cde07d48bef1ba7c74b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css?ver=2.70 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:41 GMT
ETag: "176-5c86c0a8308ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 239
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.3
18.188.241.173200 OK 1.3 kB URL HTTP/1.1 actempire.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.3
IP 18.188.241.173:0
File type ASCII text, with very long lines (6027)
Hash 8e62e5b930802e2e253835d45285dea8
532d5facd612ac06b6e60c5cd5b61888196321b0
7d8dbe9afe0cdd284910ac197664da90193c66d2eb567237f2f364d489059891
GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=13.4.3 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:43 GMT
ETag: "178c-5c86c0a95a69f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1334
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
18.188.241.173200 OK 6.4 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 18.188.241.173:0
File type ASCII text, with very long lines (11834)
Hash a01e7812fbf91720cf14bf64f4b3a4e8
40aad72655290efe288cc81277aed1af184d667a
673d32cbce4bcb7da192dfa59effbf1e1a8962a7603a3e9709144dcbcbf32663
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:41:11 GMT
ETag: "470e-5e87be30e244d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6377
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8.6
18.188.241.173200 OK 8.8 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (21084)
Hash 5662a860aefb6c95f81bd3b4783d29b0
7b28741786f4e944b0ca983366b81f7f70d1d366
e6d09efc04586c3e78126db96dd2b09629b41a5a72c96e36f19d3cbfa53e52e6
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "616c-5c86c8db49ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8797
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.12
18.188.241.173200 OK 12 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.12
IP 18.188.241.173:0
File type ASCII text, with very long lines (4123)
Hash 68cd3a804bd8985ebfae93f24f7466f5
3ee986b3eaaf02ddcc1c655c167ce7da3dba7342
6e008e9e2209687d061f95490002e96b125e1a9b959bf64ecc8774158f7a0ece
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.12 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "b016-5c86c8db49ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12350
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/wolfram-cdf-plugin/cdfplugin.js?ver=2.0
18.188.241.173200 OK 2.5 kB URL HTTP/1.1 actempire.com/wp-content/plugins/wolfram-cdf-plugin/cdfplugin.js?ver=2.0
IP 18.188.241.173:0
File type ASCII text, with very long lines (370), with CRLF, LF line terminators
Hash 93fb48c57a5a92de2ae7fabcb4a8a9f5
3f2447d55644ea958ea954276695c5b55e342073
bad7eb55a08bf20b30c058aea128b002a215de1cbaeff8ebe4585d97b3cd5741
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wolfram-cdf-plugin/cdfplugin.js?ver=2.0 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:20:38 GMT
ETag: "1c14-574c0ecbe7180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2543
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8.6
18.188.241.173200 OK 17 kB URL HTTP/1.1 actempire.com/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (59729)
Hash 5ed9880d3b36e6098af89a5c800dec07
8d3af3312fe5db8f8b8c81274175f77f94677de4
8eda6b90cdec68b0d42b5b2a6dd8cd2bd5249845f1f2d2c2f266bb0bd42c39f2
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:23 GMT
ETag: "f8cb-5c86c8db49ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 17230
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.3
18.188.241.173200 OK 4.5 kB URL HTTP/1.1 actempire.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.3
IP 18.188.241.173:0
File type ASCII text, with very long lines (9910)
Hash 4a764da889260eee526e8d9d773a0112
5daf1e71b82d99dc030dd737d33ed34c24b19d03
4c1f8f37d2a0323dd3bbcfda4d0fbc301cf96445f7e60fc346884dc79b586f43
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=13.4.3 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:43 GMT
ETag: "352b-5c86c0a9344c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4472
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
18.188.241.173200 OK 33 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 18.188.241.173:0
File type ASCII text, with very long lines (60091)
Hash 710f6cd1760768cabad4ae98c18ae8a1
324c65bbc861609a847c74fd53cfd22a242fb36b
b8518058aabc56d421ed5063804a2a1a6196dc3267852a325fd84dd75ed0dd3c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:59:21 GMT
ETag: "18127-5e87c24055f9a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 33065
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/slickquiz/slickquiz/css/slickQuiz.css?ver=5.8.6
18.188.241.173200 OK 475 B URL HTTP/1.1 actempire.com/wp-content/plugins/slickquiz/slickquiz/css/slickQuiz.css?ver=5.8.6
IP 18.188.241.173:0
Hash 3cb3fa6e41b6cc17e35853714a5ac657
ac48c38bdedcc307ddb410ad9d523257a4bc6e3a
e4eb4f71dc79144ef22302b16e1117dc48deddae7675a95afd5ded2854630a6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/slickquiz/slickquiz/css/slickQuiz.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:00:28 GMT
ETag: "38c-574c0a4aa2623-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 475
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/plugins/slickquiz/css/front.css?ver=5.8.6
18.188.241.173200 OK 929 B URL HTTP/1.1 actempire.com/wp-content/plugins/slickquiz/css/front.css?ver=5.8.6
IP 18.188.241.173:0
Hash d5f737c78d5e7791cc64feef5163510d
7e36e6a36deaa0c1e08f68da5d53eb60ca5efcae
804b756c82d659f1ddb39413aca05edf2edb8f2dde6507dff4427e24643b0b41
GET /wp-content/plugins/slickquiz/css/front.css?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 19:59:23 GMT
ETag: "d5d-574c0a0c47475-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 929
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
18.188.241.173200 OK 8.2 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP 18.188.241.173:0
File type ASCII text, with very long lines (7995)
Hash 86b5d48b016b9e25901ef00f5cbc81c0
e0b69efcd1dc15bcba3fde6f3e39abe3b1f9e5ea
7a060890574662c0cdb86719633b707cb485a6d973f97421618beb2fb73004dd
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "5fbd-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8189
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
18.188.241.173200 OK 2.4 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
IP 18.188.241.173:0
File type ASCII text, with very long lines (3224)
Hash c1c7713b729199ff85fcd618b07ad034
5edef6f2b39ed42211f9b428593264fdba89cf3b
416c0941a819d59129006c195ceda85fac825dddf8dda00137d44b963ddfa72a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "1bbe-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2370
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1
18.188.241.173200 OK 7.8 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1
IP 18.188.241.173:0
File type HTML document, ASCII text, with very long lines (24623)
Hash 5c144d4969fc95fdf6bcd4bda63512c6
3785fb1a39f5376fe0d028436fc034b3493bd898
382fa2d61f3efced8c7c92184e8d9d801587c71c42e9f974df8bf2dd69bbaf7f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "6f58-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7773
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
18.188.241.173200 OK 3.7 kB URL HTTP/1.1 actempire.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 18.188.241.173:0
File type ASCII text, with very long lines (6428)
Hash ceca883627542ad6dea6b578ec431ca7
7f55538d642ec661d3a839888f5903ccd526f55e
1f4117ec63fe2a1d1ec20a5187617fcffe7d64b789c28e9e5874e20b59ecc7c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:29 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "2790-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3720
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
js.cofounderspecials.com/splash.js?v=7.7.5
194.135.30.42200 OK 890 B URL HTTP/2 js.cofounderspecials.com/splash.js?v=7.7.5
IP 194.135.30.42:0
ASN #2856 British Telecommunications PLC
File type ASCII text, with very long lines (1976), with no line terminators
Hash d8ebc6d5a857aef0b27c2b3856ff16c8
30e9e1cac64fd31cc1348bcd15b78fdebc2adde2
53e18f45673566f0c9bad88e9dca44681321c8db01bedd43ae46bf560c65b67f
Analyzer Verdict Alert fortinet Malware
GET /splash.js?v=7.7.5 HTTP/1.1
Host: js.cofounderspecials.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 14:43:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 890
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
actempire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
18.188.241.173200 OK 7.4 kB URL HTTP/1.1 actempire.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 18.188.241.173:0
File type Unicode text, UTF-8 text, with very long lines (16345)
Hash 1b7e88cab52d94ccb525c4af925325ac
0bc76f29e31363c10c1bc0dfec24c15073f5befc
c60120ee23377314231dc50a84fe4b5d459072a84a4dd890bc95a864f142987d
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "4ee0-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7351
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
18.188.241.173200 OK 3.1 kB URL HTTP/1.1 actempire.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de
IP 18.188.241.173:0
File type ASCII text, with very long lines (5427)
Hash f6bbc2fc0a5ef0b22dbe020ec5bd9f46
c2fa6164b408a8e2c5b6653751437f224e0a9d2f
23e1265d17eb2f983e1b5cacdc9a9154177f0281e2574e90ba6e952716f9616e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "23ca-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3111
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
18.188.241.173200 OK 5.4 kB URL HTTP/1.1 actempire.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 18.188.241.173:0
File type ASCII text, with very long lines (13009)
Hash c529f6df5b5b218d8f83f8ca5a23a28b
d6ef4896be30f393a9fc2d1ff70e09ce5728d378
1f796cd66ec6fc0824878de3bc68c9d51c9a46be0868108663585870de8e431b
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:57:21 GMT
ETag: "4145-5c86c8d961640-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5391
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
18.188.241.173200 OK 5.2 kB URL HTTP/1.1 actempire.com/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79
IP 18.188.241.173:0
Hash 2019f2c24d8c24d190864b3b050d5d41
1bb04ec47a80d5cb57d6349168d4f226560df669
fcf3c8efdd10dd48a93d1cbc373f2d61f81a9cc481dd566ecf30cad50038535a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "3514-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5171
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
18.188.241.173200 OK 7.3 kB URL HTTP/1.1 actempire.com/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP 18.188.241.173:0
File type ASCII text, with very long lines (16138)
Hash 0d3518c40ee5cc76bdd49de1db64aa5a
aa22420f3fe0492f2b7ff9b2c7cf2bab7b9c4f2d
ec9199f764514fc3c23e6a6734058fdcc96b8d713f975efc52984e43dd3d09cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "4d7e-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7277
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.3
18.188.241.173200 OK 2.3 kB URL HTTP/1.1 actempire.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.3
IP 18.188.241.173:0
File type HTML document, ASCII text, with very long lines (2756)
Hash 13f0b4f431985a618ca6293a61745007
9d660f35622b72780756c2e490d9508cf75d6663
b8dda32623e865e9945a6639b898a2fbbc0f41435154e69a3e79ab477170f30d
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=13.4.3 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:43 GMT
ETag: "1939-5c86c0a9344c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2302
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5929
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:43:30 GMT
Connection: keep-alive
actempire.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
18.188.241.173200 OK 2.1 kB URL HTTP/1.1 actempire.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (1413)
Hash b1720e404bbeb9b731af398366ec1d3e
23de5257caabaf3c7eb82bd6d5a584d959035399
22637f47f5533eceeccaae10091b7d0644cf5305d4faa282a1c38f962ef6f34d
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "141c-5c86c0b782680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2063
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5929
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:43:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5929
Expires: Fri, 27 Jan 2023 16:22:19 GMT
Date: Fri, 27 Jan 2023 14:43:30 GMT
Connection: keep-alive
actempire.com/wp-content/plugins/slickquiz/slickquiz/js/slickQuiz.js?ver=5.8.6
18.188.241.173200 OK 8.6 kB URL HTTP/1.1 actempire.com/wp-content/plugins/slickquiz/slickquiz/js/slickQuiz.js?ver=5.8.6
IP 18.188.241.173:0
Hash d7bcf7a928713da96803b0f5daa9180d
e9ff0e76e4a8e5ce3cbb67ab8564a86e3dcd5ef6
dcb010af2e65792dbf9fbcdc3e4141441ade65e8477036d185d2edb8d9359930
GET /wp-content/plugins/slickquiz/slickquiz/js/slickQuiz.js?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:00:37 GMT
ETag: "a411-574c0a528a340-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8587
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
18.188.241.173200 OK 86 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
IP 18.188.241.173:0
Hash e22e6f9d9e21e372f7808777799fbd92
f74d31389cf98f4eece6c2030234a5922c1f68b5
c4d38897fd432be9437f4c5029295103bf6a8587ca9d521ba64b7fa02d5f6171
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/style.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:12 GMT
ETag: "a0-574c0f5f9df9e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 86
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61f2aec8-2d63-4f9f-9980-04c179cc5720.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61f2aec8-2d63-4f9f-9980-04c179cc5720.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 464592dade1d7207d58b22d5d09d9254
3caa2537edfe4c738540884b3eda51e437d26f4d
c0cdec94ff460c4b875657bb53ed90ef2ef786a2b8095d1ebf09365556536375
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61f2aec8-2d63-4f9f-9980-04c179cc5720.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4627
x-amzn-requestid: 38f2ed09-3a2e-4b5d-bde9-24fd7467d1a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZJE-BIAMFvdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3a-4ad90b1c2883444f547b6f84;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Pl5Ta4lZHz2a_R1U3OnL1AZFcLc4Ez6_2U7WZ6ZYUC26k9r7m6mxXw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 03:05:12 GMT
age: 41898
etag: "3caa2537edfe4c738540884b3eda51e437d26f4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
18.188.241.173200 OK 3.1 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
IP 18.188.241.173:0
File type ASCII text, with very long lines (677)
Hash fc84db2eaccaff5dc77d9abb5031a094
465a4f72c5a163e49d035dd3de81275d00997464
d18798ba0fe80336865989219f7e8f6c8e4ffc08711b20cc2f2fa2cacd526f8d
GET /wp-content/themes/ACTEmpire/stylesheets/layout.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/style.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:13 GMT
ETag: "2ef0-574c0f602f7c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3067
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/bootstrap.css
18.188.241.173200 OK 8.7 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/bootstrap.css
IP 18.188.241.173:0
Hash 9d0ea321fb480972a4544c2b80dab24c
c8ddc558a60262c43464d2897089468d231773dc
3df586e76a1ab52fa896a57b24448d8db2280ca224428fc3e978004abce0c2e4
GET /wp-content/themes/ACTEmpire/stylesheets/bootstrap.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/style.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:11 GMT
ETag: "db3b-574c0f5e30bc8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8747
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/wordpress.css
18.188.241.173200 OK 2.9 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/wordpress.css
IP 18.188.241.173:0
File type ASCII text, with very long lines (761)
Hash f971698917d47f34453986fbe99bf8ac
38adb65d19e3f6d5d45a42d2faf12f6e53ff5aa3
e851c7903c92e046f8319c48409fb5fd2a54cd1707819fda164c489d26977fa4
GET /wp-content/themes/ACTEmpire/stylesheets/wordpress.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/style.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:13 GMT
ETag: "3ed9-574c0f6075ccc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2865
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 79915
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc869235086902c4acc379733b6bfdb8
0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae
e614e29b14e69209fd4b82a688290f7a3f541909833a6558cf480aca899bab6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9056
x-amzn-requestid: 81cf473d-8dc6-49e7-b012-d0b7dfaec7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fB4COHTlIAMFtRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca3a0e-0848461c054db5c66fde9107;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 06:51:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MApUIVJ9KiOB34nLWUtMNmA8deQVoQ9xyNqSUYXlzdLlGoP9n78C5A==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 06:24:42 GMT
age: 29928
etag: "0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 60822
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:20:00 GMT
age: 33810
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2
f90c205f370a2426dffe3c21b24bfa551b385556
6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4272
x-amzn-requestid: e051c22b-c2ec-4e59-b29b-ba1464d8015b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRz28G13oAMFeeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d099c5-48b013ff34b9702a6d2fd560;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 02:53:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3BquvYOvgBWY2JeuOjZH9t1bunnj5yAXmMqyqZKuD6v2xMm8BAG3lw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 12:35:00 GMT
age: 7710
etag: "f90c205f370a2426dffe3c21b24bfa551b385556"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.normalize.css
18.188.241.173200 OK 1.0 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.normalize.css
IP 18.188.241.173:0
File type ASCII text, with very long lines (2443)
Hash 12c5914e3774217ffeefe9e5724dd06f
fd82eb7d4d1f5e72128fdc41257b618e84ad097d
27a3100b88e93310a0477f958d41f0469a3f44d7215eb6132bc08af3c373f351
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.normalize.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:12 GMT
ETag: "98c-574c0f5ef6014-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1038
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.tabs.css
18.188.241.173200 OK 738 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.tabs.css
IP 18.188.241.173:0
File type ASCII text, with very long lines (3275)
Hash 448de9d5e338019e612737c9644ee24f
8f6e0671472dd1367b893be8141bdb63f97ad821
ba1edb6fa56eae71e2439db8050e1b435da297ce55ef518898776985388fa62a
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.tabs.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:12 GMT
ETag: "ccc-574c0f5f6843b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 738
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.snippet.css
18.188.241.173200 OK 989 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.snippet.css
IP 18.188.241.173:0
File type ASCII text, with very long lines (4495)
Hash 1bc2120d49847fe47034ed590ecee60d
27e5191d13d6c71abe4d9729f5c0d812a9a067b3
5af7378a6031c6fbe46c3fe530ddeef543b6681b83185ff0ceaf1d96434120d0
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.snippet.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:12 GMT
ETag: "1190-574c0f5f2f9f8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 989
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.grid.css
18.188.241.173200 OK 891 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.grid.css
IP 18.188.241.173:0
Hash 9b6d2908191c7ca737e667f38123a187
4ce34d25745f0a6a30e2f1522bf634ff53f7c188
d6b2392d37f20c4757e4a7e07cc8714ecb681b60ebba686da66d0fa2f3ff28c8
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.grid.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:11 GMT
ETag: "e38-574c0f5ec04b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 891
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.alerts.css
18.188.241.173200 OK 782 B URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.alerts.css
IP 18.188.241.173:0
Hash f14ff016beb006fff6191623cd08107d
bf433b9fffb196f8e77523e78cf3e8124d9d6f71
a7ee8a0ea10dda5000f382e8353703633d6c21d2e8cb3b064dd9276577e248fb
GET /wp-content/themes/ACTEmpire/stylesheets/jockstrap/jock.alerts.css HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/jockstrap/jockstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:11 GMT
ETag: "905-574c0f5e8b8ee-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 782
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
actempire.com/wp-content/uploads/wpcf7_captcha/406211230.png
18.188.241.173200 OK 792 B URL HTTP/1.1 actempire.com/wp-content/uploads/wpcf7_captcha/406211230.png
IP 18.188.241.173:0
File type PNG image data, 60 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 31880994465bfed33370d5fc38e082b4
5a4d92ade0dced4ee45d390cd3ff84b0842641d5
45d9cc2dccc703f4719de97bc81db0c0d49fb18e182d45518b0e9541e8f206c1
GET /wp-content/uploads/wpcf7_captcha/406211230.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2023 14:43:29 GMT
ETag: "318-5f33fe3841352"
Accept-Ranges: bytes
Content-Length: 792
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 97d3d5fa967797ca8f8bfb4dd117f2f6
2a02250b364d2d5cdfdf742591b6dfc5dffb9192
1972cb71afe75cdabe4786acec563f543fb7c4cb7ccfbefd4f8e6383e7d62592
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1972CB71AFE75CDABE4786ACEC563F543FB7C4CB7CCFBEFD4F8E6383E7D62592"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7687
Expires: Fri, 27 Jan 2023 16:51:37 GMT
Date: Fri, 27 Jan 2023 14:43:30 GMT
Connection: keep-alive
actempire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
18.188.241.173200 OK 6.6 kB URL HTTP/1.1 actempire.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 18.188.241.173:0
File type ASCII text, with very long lines (16368)
Hash 753a1029921de9545ee23fdba60de243
ed50f313b50faede521fea9d33c6b43c78d5a65b
3bef7dcb54ee59ba5d8c5d512e91e08c5a051c8416336d0286af3c97c6308dec
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Sat, 20 Aug 2022 11:14:23 GMT
ETag: "5a07-5e6aa511961c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6642
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
actempire.com/wp-content/uploads/2013/09/Youtube_32x32.png
18.188.241.173301 Moved Permanently 337 B URL HTTP/1.1 actempire.com/wp-content/uploads/2013/09/Youtube_32x32.png
IP 18.188.241.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash da4037f686879eb969c354169eed13c4
6cbd5ec7c87092961383e06d281611f1fb20b94e
de27e9000f9c68e33150e669053f947c0085820c39be8f541dcd1e0dbf20d3f8
GET /wp-content/uploads/2013/09/Youtube_32x32.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Location: https://actempire.com/wp-content/uploads/2013/09/Youtube_32x32.png
Content-Length: 337
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
actempire.com/wp-content/uploads/2013/09/Twitter_32x32.png
18.188.241.173301 Moved Permanently 337 B URL HTTP/1.1 actempire.com/wp-content/uploads/2013/09/Twitter_32x32.png
IP 18.188.241.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92c8a855bda50a42f3dbf51494fc6697
0a979ecb93f0cee24071855ebf157f5091f4665d
09a7ba71daf8e135b09384601fdcfa788ec6514c364610008220a8d73a481309
GET /wp-content/uploads/2013/09/Twitter_32x32.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Location: https://actempire.com/wp-content/uploads/2013/09/Twitter_32x32.png
Content-Length: 337
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
actempire.com/wp-content/uploads/2012/11/ad-4C-book.png
18.188.241.173200 OK 75 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2012/11/ad-4C-book.png
IP 18.188.241.173:0
File type PNG image data, 311 x 311, 8-bit/color RGBA, non-interlaced\012- data
Hash 370d4bd0e7883223e9bd6804a48f5d70
0c1746f1baf719e279b4b6e395b9816b0c37a1a9
5c4917d5d5b986f3afc550d75bb6da20c8aad440ab0fce48f726783673a7c5fb
GET /wp-content/uploads/2012/11/ad-4C-book.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:24:29 GMT
ETag: "1246b-574c0fa8b62b3"
Accept-Ranges: bytes
Content-Length: 74859
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/themes/ACTEmpire/images/actempire.logo.png
18.188.241.173200 OK 9.3 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/images/actempire.logo.png
IP 18.188.241.173:0
File type PNG image data, 155 x 193, 8-bit/color RGBA, non-interlaced\012- data
Hash c0fafb611ca69b2ed331cd65e9de8cc6
f6369c84309d00b3e33079a7d3284e694a7987b1
daf6f10b79210e62c0af8cbc1c0155a01a0980a27c8c1788277ca3f0dc41060a
GET /wp-content/themes/ACTEmpire/images/actempire.logo.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:00 GMT
ETag: "2443-574c0f5439eac"
Accept-Ranges: bytes
Content-Length: 9283
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/site.png
18.188.241.173200 OK 1.1 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/site.png
IP 18.188.241.173:0
File type PNG image data, 53 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 30fbd45fde861fdd15157788e9613e1c
594afe1b7bbc6e98cd0de7f58931b4fe1e1576e0
9d42990a13f0450515a1284f88a9a036d9876b05122db8955f325c4fa11a0a1b
GET /wp-content/themes/ACTEmpire/images/backgrounds/site.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:03 GMT
ETag: "446-574c0f56a1292"
Accept-Ranges: bytes
Content-Length: 1094
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/themes/ACTEmpire/images/glyphicons-halflings-white.png
18.188.241.173200 OK 8.8 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/images/glyphicons-halflings-white.png
IP 18.188.241.173:0
File type PNG image data, 469 x 159, 8-bit colormap, non-interlaced\012- data
Hash 9bbc6e9602998a385c2ea13df56470fd
a25c4705320fd63c33790e666872910e702b9bf6
f0e0d95a9c8abcdfabf46348e2d4285829bb0491f5f6af0e05af52bffb6324c4
GET /wp-content/themes/ACTEmpire/images/glyphicons-halflings-white.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/bootstrap.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:03 GMT
ETag: "2249-574c0f56ee4f6"
Accept-Ranges: bytes
Content-Length: 8777
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/navigation.png
18.188.241.173200 OK 3.1 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/navigation.png
IP 18.188.241.173:0
File type PNG image data, 990 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash fdbeacbf39f3a33e6e2a239d9378aa55
837ce47259a02b0d58b220bf3e60160107776797
40f149a73e5bc5e3882caf5cb4391bf58eb23fd1f9179003d8c7b0c1d9c577d3
GET /wp-content/themes/ACTEmpire/images/backgrounds/navigation.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:01 GMT
ETag: "c00-574c0f548de71"
Accept-Ranges: bytes
Content-Length: 3072
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/uploads/2013/09/Youtube_32x32.png
18.188.241.173200 OK 2.0 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2013/09/Youtube_32x32.png
IP 18.188.241.173:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c152cca05836bd06f49fd0472980bf3
342753bb24b88c3fe0be8a2239ccf99ebcba8851
cd8947526c8389b3b772acb5a77b1e74ba2b1bbef89c53545c5ec705d48365a4
GET /wp-content/uploads/2013/09/Youtube_32x32.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:25:16 GMT
ETag: "7c1-574c0fd526507"
Accept-Ranges: bytes
Content-Length: 1985
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/uploads/2013/09/Twitter_32x32.png
18.188.241.173200 OK 1.9 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2013/09/Twitter_32x32.png
IP 18.188.241.173:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d7799b101e192f20a46d0cadaa69082b
f2c817db0dbe962e78315fcf980a4b0e575339cb
5aefb40eeac13d58443c6f14750c4d6baf8ce30e22e8c1dc4031388c718ed1ca
GET /wp-content/uploads/2013/09/Twitter_32x32.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:25:15 GMT
ETag: "791-574c0fd435198"
Accept-Ranges: bytes
Content-Length: 1937
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
159.69.234.10200 OK 8 B URL HTTP/1.1 track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
IP 159.69.234.10:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 91fa0ad955bf0c9dd5d8527be99d70f7
140e810a6171fa141392e150797967e941598d89
5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200
GET /ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 HTTP/1.1
Host: track.violetlovelines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 14:43:30 GMT
Content-Type: application/javascript
Content-Length: 8
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa3ks6b6;Expires=Monday, 27-Feb-2023 14:43:30 GMT;Max-Age=2678400;Path=/
674be=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NDgzMDYxMCxcIjQyXCI6MTY3NDgzMDYxMCxcIjM5XCI6MTY3NDgzMDYxMH0sXCJjYW1wYWlnbnNcIjp7XCI4XCI6MTY3NDgzMDYxMCxcIjdcIjoxNjc0ODMwNjEwLFwiMTJcIjoxNjc0ODMwNjEwfSxcInRpbWVcIjoxNjc0ODMwNjEwfSJ9.OvjlASjeh_hfvaYyVnWYqNk5ny0VEC0mYHJckLlCEXY;Expires=Monday, 24-Feb-2076 05:27:00 GMT;Max-Age=1674917010;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
actempire.com/wp-content/uploads/2012/11/actuarialscience-minor-150x150.jpeg
18.188.241.173200 OK 7.3 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2012/11/actuarialscience-minor-150x150.jpeg
IP 18.188.241.173:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash 2bf50fb87c4d4510090170845030071c
9f0d6fd8b8966f92eda61337bcf9f03dfced2f70
2b108c8e1de777b5e9df87abdaf9c85c91689b66fbb7ae8bf79bde09b06c7d99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2012/11/actuarialscience-minor-150x150.jpeg HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:24:27 GMT
ETag: "1c8e-574c0fa66a450"
Accept-Ranges: bytes
Content-Length: 7310
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
actempire.com/wp-content/uploads/2013/04/exam-150x150.png
18.188.241.173200 OK 35 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2013/04/exam-150x150.png
IP 18.188.241.173:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 612d7512e5003b29c000d93f2666b4ef
90854937d7629101902e774d991ceb969d59cf3d
e6673d99c3c978211db2672a7e9a9dd254187a353350c8e8438cb354c5390b3e
GET /wp-content/uploads/2013/04/exam-150x150.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:25:09 GMT
ETag: "8a3a-574c0fce91b80"
Accept-Ranges: bytes
Content-Length: 35386
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
actempire.com/wp-content/uploads/2013/09/youtube-logo-150x150.jpeg
18.188.241.173200 OK 5.6 kB URL HTTP/1.1 actempire.com/wp-content/uploads/2013/09/youtube-logo-150x150.jpeg
IP 18.188.241.173:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Hash 92c76768666f718323f866f39c3ddf2c
65dcbe2d3ec9e52e089b9652243bc77b4d841bc6
f11dd8ee427d075e68f690c8bf26730c18e80b061c3865510b3bf943159c9f3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2013/09/youtube-logo-150x150.jpeg HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:25:16 GMT
ETag: "15b7-574c0fd561e2a"
Accept-Ranges: bytes
Content-Length: 5559
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
simple.cofounderspecials.com/strong.js?v=4.40
194.135.30.42200 OK 890 B URL HTTP/2 simple.cofounderspecials.com/strong.js?v=4.40
IP 194.135.30.42:0
ASN #2856 British Telecommunications PLC
File type ASCII text, with very long lines (1976), with no line terminators
Hash d8ebc6d5a857aef0b27c2b3856ff16c8
30e9e1cac64fd31cc1348bcd15b78fdebc2adde2
53e18f45673566f0c9bad88e9dca44681321c8db01bedd43ae46bf560c65b67f
GET /strong.js?v=4.40 HTTP/1.1
Host: simple.cofounderspecials.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 14:43:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 890
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
actempire.com/wp-content/themes/ACTEmpire/thumb/phpThumb.php?src=https://actempire.com/wp-content/uploads/2012/11/Math-Mania-math-31107557-2288-1617.jpeg&w=960&h=212&zc=1
18.188.241.173200 OK 37 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/thumb/phpThumb.php?src=https://actempire.com/wp-content/uploads/2012/11/Math-Mania-math-31107557-2288-1617.jpeg&w=960&h=212&zc=1
IP 18.188.241.173:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 960x212, components 3\012- data
Hash 78698fde7278143f17cbf36b8245cca1
8f99d66fda098a27506a259fdc782961589acc7b
a7fb7c23ab697ea681ab4432c9baa8756253ff35737bf8c7bc0383a5802620bc
GET /wp-content/themes/ACTEmpire/thumb/phpThumb.php?src=https://actempire.com/wp-content/uploads/2012/11/Math-Mania-math-31107557-2288-1617.jpeg&w=960&h=212&zc=1 HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Content-Disposition: inline; filename="phpThumb_generated_thumbnailjpg"
Last-Modified: Fri, 31 Aug 2018 20:42:40 GMT
X-Powered-By: PHP/7.3.27, PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/site.math.png
18.188.241.173200 OK 508 kB URL HTTP/1.1 actempire.com/wp-content/themes/ACTEmpire/images/backgrounds/site.math.png
IP 18.188.241.173:0
File type PNG image data, 2200 x 1570, 8-bit/color RGB, non-interlaced\012- data
Size 508 kB (507484 bytes)
Hash 4bdc12f2e8ef37fd1c313db0b710d213
ee4d0875ebbda12b907a4a5f41cc4b56e1fb1d03
3c1afb200f9fea4e1e0b234bc77f4d2625912a84b1adf4960437d8be8bf17f48
GET /wp-content/themes/ACTEmpire/images/backgrounds/site.math.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/wp-content/themes/ACTEmpire/stylesheets/layout.css
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:30 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 20:23:03 GMT
ETag: "7be5c-574c0f56649ce"
Accept-Ranges: bytes
Content-Length: 507484
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
159.69.234.10200 OK 8 B URL HTTP/1.1 track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
IP 159.69.234.10:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with no line terminators
Hash 91fa0ad955bf0c9dd5d8527be99d70f7
140e810a6171fa141392e150797967e941598d89
5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200
GET /ycYHHc?&se_referrer=&default_keyword=Actuarial%20Empire%20%7C%20ACTEmpire.com&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 HTTP/1.1
Host: track.violetlovelines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 14:43:31 GMT
Content-Type: application/javascript
Content-Length: 8
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa3ks6c5;Expires=Monday, 27-Feb-2023 14:43:31 GMT;Max-Age=2678400;Path=/
674be=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NDgzMDYxMCxcIjQyXCI6MTY3NDgzMDYxMCxcIjM5XCI6MTY3NDgzMDYxMH0sXCJjYW1wYWlnbnNcIjp7XCI4XCI6MTY3NDgzMDYxMCxcIjdcIjoxNjc0ODMwNjEwLFwiMTJcIjoxNjc0ODMwNjEwfSxcInRpbWVcIjoxNjc0ODMwNjEwfSJ9.OvjlASjeh_hfvaYyVnWYqNk5ny0VEC0mYHJckLlCEXY;Expires=Monday, 24-Feb-2076 05:27:02 GMT;Max-Age=1674917011;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google-analytics.com/analytics.js
142.250.74.132200 OK 20 kB URL HTTP/2 google-analytics.com/analytics.js
IP 142.250.74.132:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 27 Jan 2023 12:49:58 GMT
expires: Fri, 27 Jan 2023 14:49:58 GMT
cache-control: public, max-age=7200
age: 6813
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5d26c41823a6e8c5fdcf3c28efbfdd01
2415b281bb7ee36d62aec11e477e4797e8bbc10c
e7c952964c5abd9aa20b354673bedf66a9ddb64c8c9ce0075a6601fe5d28cabe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 14:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1927530790&t=pageview&_s=1&dl=https%3A%2F%2Factempire.com%2F&ul=en-us&de=UTF-8&dt=Actuarial%20Empire%20%7C%20ACTEmpire.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2035744164&gjid=338641659&cid=1261297767.1674830611&tid=UA-37059667-1&_gid=1384267400.1674830611&_r=1&_slc=1&z=1306360012
216.58.207.206200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1927530790&t=pageview&_s=1&dl=https%3A%2F%2Factempire.com%2F&ul=en-us&de=UTF-8&dt=Actuarial%20Empire%20%7C%20ACTEmpire.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2035744164&gjid=338641659&cid=1261297767.1674830611&tid=UA-37059667-1&_gid=1384267400.1674830611&_r=1&_slc=1&z=1306360012
IP 216.58.207.206:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1927530790&t=pageview&_s=1&dl=https%3A%2F%2Factempire.com%2F&ul=en-us&de=UTF-8&dt=Actuarial%20Empire%20%7C%20ACTEmpire.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=2035744164&gjid=338641659&cid=1261297767.1674830611&tid=UA-37059667-1&_gid=1384267400.1674830611&_r=1&_slc=1&z=1306360012 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://actempire.com
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://actempire.com
date: Fri, 27 Jan 2023 14:43:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2eeb623fff1bd0844b234829abf04225
98b01fc04e5237eba987e628557cbd98e2c54236
12352a2a769ee486d93d16b56aa0e95089678a20cad01d86b4603e767b18ac0d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 14:43:31 GMT
Last-Modified: Fri, 27 Jan 2023 12:54:28 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bHM-jKcqn7gsr4Fyrx7pNznAl_X_qDy42cvY6nX98dKrLAZ1pBqQcA==
Age: 6543
l.sharethis.com/pview?event=pview&hostname=actempire.com&location=%2F&product=ga&url=https%3A%2F%2Factempire.com%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Actuarial%20Empire%20%7C%20ACTEmpire.com&cms=unknown&publisher=6105651f3d07090014462655&sop=true&version=st_sop.js&lang=en
52.29.227.173204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=actempire.com&location=%2F&product=ga&url=https%3A%2F%2Factempire.com%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Actuarial%20Empire%20%7C%20ACTEmpire.com&cms=unknown&publisher=6105651f3d07090014462655&sop=true&version=st_sop.js&lang=en
IP 52.29.227.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=actempire.com&location=%2F&product=ga&url=https%3A%2F%2Factempire.com%2F&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Actuarial%20Empire%20%7C%20ACTEmpire.com&cms=unknown&publisher=6105651f3d07090014462655&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://actempire.com
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://actempire.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 27 Jan 2023 14:43:31 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
actempire.com/favicon.ico
18.188.241.173302 Found 0 B URL HTTP/1.1 actempire.com/favicon.ico
IP 18.188.241.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 14:43:31 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
P3P: CP="NOI"
Link: <https://actempire.com/wp-json/>; rel="https://api.w.org/"
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://actempire.com/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://actempire.com
X-Redirect-By: WordPress
Location: https://actempire.com/wp-includes/images/w-logo-blue-white-bg.png
X-Powered-By: PHP/7.3.27, PleskLin
Content-Length: 0
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
actempire.com/wp-includes/images/w-logo-blue-white-bg.png
18.188.241.173200 OK 4.1 kB URL HTTP/1.1 actempire.com/wp-includes/images/w-logo-blue-white-bg.png
IP 18.188.241.173:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: actempire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://actempire.com/
Connection: keep-alive
Cookie: __wpdm_client=a59f007fbf3384ccc33cc586d5d348f0; PHPSESSID=tt9qt27eifrooftrq61ae3lqfr; _ga=GA1.2.1261297767.1674830611; _gid=GA1.2.1384267400.1674830611; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 14:43:31 GMT
Server: Apache
Last-Modified: Sat, 31 Jul 2021 14:20:58 GMT
ETag: "1017-5c86c0b816edd"
Accept-Ranges: bytes
Content-Length: 4119
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
buttons-config.sharethis.com/js/6105651f3d07090014462655.js
54.230.111.117200 OK 30 B URL HTTP/2 buttons-config.sharethis.com/js/6105651f3d07090014462655.js
IP 54.230.111.117:0
File type ASCII text, with no line terminators
Hash e6e1643313740711175f51662a65b42f
c3fc7a03fea3138a1497dab12d5b4e40fd4aeaef
2c29defe29114d0e8b948e78d50ebb281035df53a9167089deb1e77e801bbd2f
GET /js/6105651f3d07090014462655.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 30
date: Fri, 27 Jan 2023 14:43:32 GMT
last-modified: Sat, 31 Jul 2021 14:58:40 GMT
etag: "e6e1643313740711175f51662a65b42f"
x-amz-server-side-encryption: AES256
cache-control: max-age=60,public
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t2zcsTjmDWQKHtPt3jmhl3qPJCl0yCUGoLlCg0u7IAKApdlf4k251g==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
platform-api.sharethis.com/js/sharethis.js
54.230.111.68200 OK 0 B URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 54.230.111.68:0
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Fri, 27 Jan 2023 14:37:48 GMT
cache-control: max-age=600, public
etag: W/"302c1-EG4DNTzQnd49XZUQ/Gs3WyHzFo4"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uhau6Jt8MSDhT2Dz2nXk9O1AzuiDmr04l4qso4_7NtFbonucOq7IcA==
age: 341
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik
IP 142.250.74.138:0
GET /css?family=Rubik HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://actempire.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 14:43:29 GMT
date: Fri, 27 Jan 2023 14:43:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2